KLA10983
Privilege escalation vulnerability in Windows IIS
Обновлено: 17/06/2019
Дата обнаружения
14/03/2017
Уровень угрозы
Warning
Описание

An improper sanitizing of a specially designed request was found in Microsoft IIS Server. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited remotely via a specially designed URL.

Пораженные продукты

Windows Vista Service Pack 2
Windows 7 Service Pack 1
Windows 8.1
Windows RT
Windows 10
Windows Server 2008
Windows Server 2008 R2
Windows Server 2012
Windows Server 2012 R2

Решение

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Первичный источник обнаружения
MS17-016
CVE-2017-0055
Оказываемое влияние
?
ACE 
[?]

OSI 
[?]

DoS 
[?]

SB 
[?]

PE 
[?]
Связанные продукты
Microsoft Windows Vista
Microsoft Windows Server 2012
Microsoft Windows 7
Microsoft Windows Server 2008
Windows RT
CVE-IDS
CVE-2017-00554.3Warning
Microsoft official advisories
Microsoft Security Update Guide
KB list

4012217
4012215
4012216
4012606
4013198
4013429
4012212
4012214
4012213
4012373
4013074